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DETAILED ACTION 



1 . Claims 1-11,1 3-22, 26, 27, and 30-32 are pending in this office action. 



Rejections 

2. The text of those sections of Title 35, U.S. Code not included in this action can 
be found in a prior Office action. 



Claim Rejections - 35 USC § 103 

3. Claims 1,9-11, 13-17, 26-30, and 32 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Ohran (U.S. Patent No. 6,397,307) in view of Yanai et al. (U.S. 
Patent No. 5,544,347). 



Regarding claim 1 , Ohran teaches a method of controlling security of data in a 
storage system having a local disk system and a remote disk system that are coupled to 
at least one host computer, the method comprising: 

• In the local disk system coupled to a first host computer: 

o When a write of data is to be made to the first volume of the local disk 
system retrieving the first encryption key (col. 1 1 , lines 24-26 suggests to 
use stored encryption keys for encryption, even though the teachings of 
Ohran dynamically creates an encryption key); 
o Encrypting the data using the first key (col. 1 1 , lines 43-45); 
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o Transferring the encrypted data to the remote disk system via a first 

communication link (col. 1 1 , lines 45-47); 
• Then in the remote disk system: 

o Determining an address for storage of the data in the remote disk system 

(col. 9, lines 29-35 and col. 10, lines 21-27); 
o Writing the data in the remote disk system (col. 9, lines 39-43 and col. 10, 

lines 21-27); 

o Determining whether the data is to be stored in an encrypted form (col. 1 1 , 
lines 40-43 suggests that some of the data can be encrypted, but does not 
necessarily mean the same data has to be decrypted); and 

o If the data is to be stored in a decrypted form, decrypting and writing the 
data in the remote disk system (col. 1 1 , lines 47-49); and 

o If the data is to be stored in an encrypted form, writing the data in the 
remote disk system without decrypting the data (col. 11, lines 40-43, the 
word may suggests that the data does not have to be decrypted). 

Ohran does not teach the local disk system having first and second volumes 
of storage, the first and second volumes associated with first and second 
encryption keys, respectively, the encrypting being performed by the local disk 
system or the determining being performed by the remote disk system, notifying the 
local disk system via the first communication link that the step of writing the data is 
complete, wherein the local disk system is coupled to the first host computer via a 
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second communication link to allow the first host computer to access data stored in the 
local disk system, the first and second communication links being different, wherein the 
remote disk system includes third and fourth volumes corresponding to the first 
and second volumes, respectively. 

Yanai et al. teaches the local disk system having first and second volumes 
of storage, the first and second volumes associated with first and second 
encryption keys, respectively (fig. 1 , ref. num 22a, 22b, 50a, 50b), the encrypting 
being performed by the local disk system or the determining being performed by the 
remote disk system (col. 6, lines 16-37), notifying the local disk system that the step of 
writing the data is complete (col. 6, lines 41-46), wherein the local disk system is 
coupled to the first host computer via a second communication link to allow the first host 
computer to access data stored in the local disk system, the first and second 
communication links being different (fig. 1, ref. num 40 and 18), wherein the remote 
disk system includes third and fourth volumes corresponding to the first and 
second volumes, respectively (col. 7, lines 54-65). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine encrypting and decrypting by the local and remote disk 
system, respectively, notifying the local disk system that the step of writing the data is 
complete, wherein the first and second communication links are different, as taught by 
Yanai et al., to the method of O hran . It would have been obvious for such modifications 
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because the notification allows the local disk system to know that the data is 
synchronized between the local and remote disk system. Yanai et al. discloses the 
local and remote disk systems as the devices performing all the processing (backup, 
mirroring, etc.). Therefore, with the combination of Yanai et al. with Ohran , encryption 
and decryption is included in the list of processes performed by Yanai et al. 

Regarding claim 9 , Ohran teaches a method for changing an encryption key 
while operating a storage system having a local disk system and a remote disk system 
comprising: 

• Storing an encryption key in a memory in the local disk system (fig. 6, ref. num 
106a); 

• Transmitting the encryption key to the remote disk system and storing it in a 
memory there via a first communication link coupling the local and remote disk 
systems (fig. 6, ref. num 16 and 106b); 

• In the local disk system, determining a boundary for use of the encryption key 
(col. 11, lines 52-55 the keys are changed at every time of consolidation); 

• In the remote disk system, receiving the boundary from the local disk system (fig. 
16, ref. num 16); 

• In both the local and the remote disk systems, determining a relationship of 
present operations to the boundary (fig. 2, ref. num 30, 36, and 42); 
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• In both the local and the remote disk system waiting for the boundary, and then 
changing the encryption key for data stored thereafter (fig. 2, ref. num 32 and 38 
and col. 11, lines 52-55). 

Ohran does not teach the encrypting being performed by the local disk system or 
the determining being performed by the remote disk system, the encryption key is 
stored in the local disk and transmitted to the remote disk and stored, wherein the local 
disk system is coupled to a first host computer via a second communication link that is 
different than the first communication link. Ohran teaches the local disk and remote 
disk exchange values and calculate a key (the keys being equal), which is stored in the 
local disk system and remote disk system. 

Yanai et al. teaches the encrypting being performed by the local disk system or 
the determining being performed by the remote disk system (col. 6, lines 16-37), 
wherein the local disk system is coupled to a first host computer via a second 
communication link that is different than the first communication link (fig. 1, ref. num 18 
and 40). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine encrypting and decrypting by the local and remote disk 
system, respectively, altering the key exchange process to include transmitting the 
stored key from the local system to the remote system, instead of transmitting values to 
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calculate the key, wherein the first and second communication links are different, as 
taught by Yanai et aL with the method of Ohran . It would have been obvious for such 
modifications because, as suggested on col. 11, lines 24-26 (Ohran), the keys could 
already be calculated and stored in the local system. This would save computation time 
of calculating keys by swapping values between the two systems. Yanai et al. discloses 
the local and remote disk systems as the devices performing all the processing (backup, 
mirroring, etc.). Therefore, with the combination of Yanai et al. with Ohran , encryption 
and decryption is included in the list of processes performed by Yanai et al. 

Regarding claim 10 , Ohran as modified by Yanai et al. teaches wherein 
operations before the boundary are performed using a first encryption key and 
operations after the boundary are performed using a second encryption key (see col. 
11, lines 52-55 of Ohran). 

Regarding claims 11 and 15 , Ohran as modified by Yanai et al. teaches wherein 
the boundary is defined by counting input/output operations and using the count to 
define the boundary (see col. 13, lines 35-50 of Ohran uses a decided time T to decide 
the boundary, and only the last IO operation before a decided time T is transmitted to 
the remote system). 



Regarding claim 13 , Ohran teaches a method of controlling encryption in a 
storage system having a local disk system and a remote disk system comprising: 
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• Determining a boundary in the local disk system where encryption is to be 
switched to an opposite state (col. 11, lines 52-55 the keys are changed at every 
time of consolidation); 

• In the remote disk system receiving a corresponding boundary from the remote 
disk system (the remote system boundary is the same place that the local system 
boundary is); 

• In both the local and the remote disk system, determining a relationship of 
present operations to the boundary (fig. 2, ref. num 30, 36, and 42); 

• In both the local and the remote disk system waiting for the boundary, and then 
changing the encryption to the opposite state (fig. 2, ref. num 32 and 38). 

Ohran does not teach the determining being performed by the remote disk 
system, maintaining a control table in each of the local and remote disk systems, 
wherein the local disk system is coupled to a host computer via a first communication 
link, and the remote disk system is coupled to a second host computer via a second 
communication link, the local disk system and the remote disk system being coupled to 
each other via a third communication link, the third communication link being different 
than the first or second communication link. Ohran teaches keys (which control 
encryption) in each system. Also, tables containing data are well known in the art and 
would be an obvious addition to this system. 
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Yanai et al. teaches the determining being performed by the remote disk system 
(col. 6 t lines 16-37), wherein the local disk system is coupled to a host computer via a 
first communication link, and the remote disk system is coupled to a second host 
computer via a second communication link, the local disk system and the remote disk 
system being coupled to each other via a third communication link, the third 
communication link being different than the first or second communication link (fig. 1 , 
ref. num 18, 40, 52, and 54). 



It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine decrypting by the remote disk system, maintaining a 
control table in each of the local and remote disk systems, wherein the first, second, 
and third communication links are different, as taught by Yanai et al. , with the method of 
Ohran . It would have been obvious for such modifications because maintaining a 
control table in the local and remote disk system supplies data values to the disk 
systems telling them how to respond to data. Yanai et al. discloses the local and 
remote disk systems as the devices performing all the processing (backup, mirroring, 
etc.). Therefore, with the combination of Yanai et al. with Ohran , encryption and 
decryption is included in the list of processes performed by Yanai et al. 



Regarding claim 14 , Ohran as modified by Yanai et al. teaches wherein 
operations before the boundary are either encrypted or not encrypted, and operations 
performed after the boundary are either not encrypted or encrypted oppositely to those 
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operations performed before the boundary (see col. 11, lines 40-43 of Ohran, the data 
can be encrypted at any time and can not be encrypted anytime, it all depends on the 
users' data). 



Regarding claims 16 and 26 , Ohran teaches a method/system of controlling 
encryption in a storage system having a local disk system and a remote disk system 
comprising: 

• Storing first and second encryption keys in a memory in the local disk system 
that is coupled to a host computer via a first communication link (fig. 6, ref. num 
106a); 

• Transmitting via a second communication link the first and second encryption 
key to the remote disk system and storing it in a memory there (fig. 6, ref. num 16 
and 106b); 

• Splitting the local disk system from the remote disk system to allow them to 
operate independently (fig. 2, the time between consolidations the local system is 
operated independently of the remote system); and 

• Switching encryption to an opposite state from a previous state after splitting the 
local disk system and remote disk system (col. 1 1 , lines 40-43, the data can be 
encrypted at any time and can not be encrypted anytime, it all depends on the 
users' data). 
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Ohran does not teach the first and second encryption keys assigned to first 
and second volumes of the local disk system, respectively and the remote disk 
system including third and fourth volumes corresponding to the first and second 
volumes, respectively, the splitting being performed by a first command by the local 
disk system or remote disk system, re-synchronizing the local disk system and the 
remote disk system, wherein the re-synchronizing is performed according to a second 
command issued by the local or remote disk system, the first and second 
communication links being different. 

Yanai et al. teaches the first and second encryption keys assigned to first 
and second volumes of the local disk system, respectively and the remote disk 
system including third and fourth volumes corresponding to the first and second 
volumes, respectively (fig. 1, ref. num 22a, 22b, 50a, 50b), the splitting being 
performed by a first command by the local disk system or the remote disk system (col. 
6, lines 16-37), re-synchronizing the local disk system and the remote disk system (col. 
6, lines 38-51), wherein the re-synchronizing is performed according to a second 
command issued by the local or remote disk system (col. 7, lines 13-31), the first and 
second communication links being different (fig. 1, ref. num 18 and 40). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine splitting by the local and remote disk system, re- 
synchronizing the local system and the remote system, wherein the first and second 



Application/Control Number: 09/618,202 Page 12 

Art Unit: 2136 

communication links are different, as taught by Yanai et aL to the system of Ohran . It 
would have been obvious for such modifications because synchronizing the data 
between the local and remote systems will make sure the remote system has the same 
data as the local system. This is important in systems where data is mirrored or 
backed-up. Yanai et al. discloses the local and remote disk systems as the devices 
performing all the processing (backup, mirroring, etc.). Therefore, with the combination 
of Yanai et al. with Ohran , encryption and decryption is included in the list of processes 
performed by Yanai et al. 

Regarding claim 17 , Ohran teaches a storage system comprising: 

• A local disk system (fig. 1, ref. num 12); 

o Said local disk system being coupled to a host computer via a first 
communication link to enable the host computer to access said volumes 
(fig. 1, ref. num 20 connected to 12); 

• A second communications link coupling the local disk system to the remote disk 
system (fig. 1, ref. num 16); 

• Wherein the local disk system determines whether encryption is to be employed 
in the data associated with the first volume in the local disk system, and if so, 
encrypts the data to be transferred to the remote disk system using the first key 
(col. 1 1 , lines 24-26 and 40-45 suggests that some or all of the data may be 
encrypted, meaning it does not have to be), and 
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• Wherein the remote disk system determines whether to store the data in either 
encrypted form or unencrypted form and stores the data in that form in the 
remote disk system (col. 11, lines 24-26 and 40-45 suggests that some or all of 
the data may be encrypted, meaning it does not have to be). 



Ohran does not teach the plurality of volumes in the local disk system 
including first and second volumes that are associated with first and second 
encryption keys, respectively, the encrypting being performed by the local disk 
system, the local system or remote system including a plurality of volumes of media for 
storing data and notifying the local disk system that the data has been stored via the 
second communication link, wherein the first and second communication links are 
different. 



Yanai et al. teaches the plurality of volumes in the local disk system 
including first and second volumes that are associated with first and second 
encryption keys, respectively (fig. 1, ref. num 22a, 22b, 50a, 50b), the encrypting 
being performed by the local disk system (col. 6, lines 16-37), the local system and 
remote system including a plurality of volumes of media for storing data (fig. 1 , ref. num 
20 and 48) and notifying the local disk system that the data has been stored via the 
second communication link (col. 6, lines 41-46), wherein the first and second 
communication links are different (fig. 1, ref. num 18 and 40). 
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It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine encrypting by the local disk system, the local system 
including a plurality of volumes of media for storing data and notifying the local disk 
system that the data has been stored, wherein the first and second communication links 
are different, as taught by Yanai et al. . to the system of Ohran . It would have been 
obvious for such modifications because the plurality of volumes for storing data allows 
the local disk system to contain a volume that is local only to it and volumes that are 
accessible by the remote system (col. 5, lines 11-34) and the notification allows the 
local disk system to know that the data is synchronized between the local and remote 
disk system. Yanai et al. discloses the local and remote disk systems as the devices 
performing all the processing (backup, mirroring, etc.). Therefore, with the combination 
of Yanai et al. with Ohran , encryption and decryption is included in the list of processes 
performed by Yanai et al. 

Regarding claim 27 , Ohran teaches a method of controlling security of data in a 
storage system having a local disk system and a remote disk system comprising: 
• In the local disk system: 

o Receiving a data update request from a host computer connected to the 
local disk system wherein said data update request includes a location of 
the first volume of the local disk system, the host computer being 
connected to the local disk via a first communication link (col. 5, lines 39- 
52, the local disk system is required to determine update times); 
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o Encrypting the data associated with the first volume of the local disk 

system using the first key (col. 1 1 , lines 43-45); 
o Transferring the encrypted data to the remote disk system (col. 1 1 , lines 

45-47); 

• Then in the remote disk system: 

o Decrypting the data using the first key (col. 1 1 , lines 47-49); and 
o Writing the decrypted data into a third volume of the remote disk system 
(col. 9, lines 39-43 and col. 10, lines 21-27) by the remote disk system (). 

Ohran does not teach the local disk system including first and second 
volumes that are assigned first and second encryption keys, respectively, the 

encrypting being performed by the local disk system or the decrypting being performed 
by the remote disk system or transmitting via a link from the local disk system, a first 
storage area of the local disk system or a second storage area of the remote disk 
system, wherein the first and second communication links are different. 

Yanai et al. teaches the local disk system including first and second 
volumes that are assigned first and second encryption keys, respectively (fig. 1 , 
ref. num 22a, 22b, 50a, 50b), the encrypting being performed by the local disk system 
or the decrypting being performed by the remote disk system (col. 6, lines 16-37), 
transmitting via a link from the local disk system, a first storage area of the local disk 
system (fig. 1 , ref. num 22a) and a second storage area of the remote disk system (fig. 
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1 , ref. num 50a), wherein the first and second communication links are different (fig. 1 , 
ref . num 1 8 and 40). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine encrypting and decrypting by the local and remote disk 
system, respectively, a first storage area of the local disk system and a second storage 
area of a remote disk system, wherein the first and second communication links are 
different, as taught by Yanai et al. , to the method of Ohran . It would have been obvious 
for such modifications because the first and second storage areas allow the local and 
remote disk system to contain separate portions that are local only and accessible by 
the other disk system (col. 5, lines 1 1-34). Yanai et al. discloses the local and remote 
disk systems as the devices performing all the processing (backup, mirroring, etc.). 
Therefore, with the combination of Yanai et al. with Ohran , encryption and decryption is 
included in the list of processes performed by Yanai et al. 

Regarding claim 28 , the combination of Ohran as modified by Yanai et al. 
teaches wherein the first storage area comprises at least a volume of the local disk 
system and the second storage area comprises at least a volume of the remote disk 
system (see fig. 1 , ref. num 20 and 48 of Yanai et al.). 



Regarding claim 29 , the combination of Ohran as modified by Yanai et al. 
teaches wherein the first portion comprises a group of volumes of the local disk system 
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(fig. 1 , ref. num 22a-c of Yanai et al.), and the second portion comprises a group of 
volumes of the remote disk system (see fig. 1 , ref. num 50a-c of Yanai et al.). 

Regarding claim 30 , Ohran teaches a storage system comprising: 

• A local disk system (fig. 1, ref. num 12), 

• A remote disk system (fig. 1, ref. num 14); 

• A first computer program operating on the local system to retrieve selected data 
from storage on the local system, and encrypt the selected data using an 
encryption key (col. 1 1 , lines 43-45); 

• Wherein the local disk system retrieves selected data from the first volume in 
the local disk system, encrypts the selected data using the first key, and 
transmits the encrypted data to the remote disk system (fig. 1 , ref. num 16, 12, 
and 20); and 

• Wherein the remote disk system decrypts the encrypted data received from the 
local disk system via the second communications link and store the data in 
unencrypted form in the third volume in the remote disk system (col. 1 1 , lines 
47-49). 

Ohran does not teach the local disk system encrypting and the remote disk 
system decrypting, the local and remote disk system including first and second 
storage volumes for storing data, wherein the local disk system is connected to a host 
computer via a first communication link; a second communications link coupling the 
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local disk system to the remote disk system, the first and second communication links 
being different. 

Yanai et al. teaches the local disk system encrypting and the remote disk system 
decrypting (col. 6, lines 16-37), the local and remote system including first and second 
storage volumes and third and fourth for storing data, the first and second volumes 
being assigned with first and second encryption keys, respectively (fig. 1, ref. num 
222a, 22b, 50a, 50b), wherein the local disk system is connected to a host computer via 
a first communication link (fig. 1, ref. num 18); a second communications link coupling 
the local disk system to the remote disk system, the first and second communication 
links being different (fig. 1, ref. num 40). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine encrypting and decrypting via the local and remote disk 
system, respectively, the local and remote system including a plurality of volumes of 
media for storing data, wherein the first and second communication links are different, 
as taught by Yanai et al. , to the system of Ohran . It would have been obvious for such 
modifications because the plurality of volumes for storing data allow each disk system to 
contain a volume that is local only to their system and volumes that are accessible by 
the other (local/remote) system (col. 5, lines 1 1-34). Yanai et al. discloses the local and 
remote disk systems as the devices performing all the processing (backup, mirroring, 
etc.). Therefore, with the combination of Yanai et al. with Ohran , encryption and 
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decryption is included in the list of processes performed by Yanai et al. Encryption and 
decryption are desirable in a system where data is stored and transferred over a 
communication link. 

Regarding claim 32 , Ohran teaches a method of controlling security of data in a 
disk system coupled to a host computer and a remote storage system, the method 
comprising: 

• At the disk system, receiving data to be stored from the host computer via a first 
communication link, so that the data can be stored in a given area in the disk 
system (fig. 1, ref. num 20 connected to 12); 

• Encrypting the data received from the host computer using the first or second 
key according to the location of the given area (col. 1 1 , lines 43-45 and col. 1 1 , 
lines 24-26 suggests to use stored encryption keys for encryption, even though 
the teachings of Ohran dynamically creates an encryption key); and 

• Transferring the encrypted data to the remote storage system via a second 
communication link by the disk system, so that the remote storage system can 
store the data therein (fig. 6, ref. num 16 and 106b). 

Ohran does not teach the disk system including first and second volumes 
that are assigned first and second encryption keys, respectively, wherein the first 
key is used if the given area is in the first volume and the second key is used if 
the given area is in the second volume, and the disk system encrypting the data. 
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Yanai et al. teaches the disk system including first and second volumes that 
are assigned first and second encryption keys, respectively, wherein the first key 
is used if the given area is in the first volume and the second key is used if the 
given area is in the second volume (fig. 1 , ref. num 22a, 22b, 50a t 50b), and the disk 
system encrypting the data (col. 6, lines 16-37). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine the disk system encrypting the data, as taught by 
Yanai et al. , to the method of Ohran . It would have been obvious for such modifications 
because Yanai et al. discloses the local and remote disk systems as the devices 
performing all the processing (backup, mirroring, etc.). Therefore, with the combination 
of Yanai et al. with Ohran , encryption and decryption is included in the list of processes 
performed by Yanai et al. Encryption and decryption are desirable in a system where 
data is stored and transferred over a communication link. 

Claims 2-8, 18-22, and 31 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Ohran (USPN '307) in view of Yanai et al. (USPN '347), and further 
in view of Jacobson (U.S. Patent No. 5,548,649). 

Regarding claims 2, 18, and 31 , Ohran as modified by Yanai et al. teaches a 
method of controlling security of data in a storage system having a local disk system 
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and a remote disk system that are coupled to at least one host computer, the method 
comprising: 

• In the local disk system coupled to a first host computer: 

o When a write of data is to be made to the local disk system retrieving the 
first encryption key (see col. 11, lines 24-26 of Ohran suggests to use 
stored encryption keys for encryption, even though the teachings of Ohran 
dynamically creates an encryption key); 

o Encrypting the data (see col. 1 1 , lines 43-45 of Ohran); 

o Transferring the encrypted data to the remote disk system via a first 
communication link (see col. 11, lines 45-47 of Ohran); 

• Then in the remote disk system: 

o Determining an address for storage of the data in the remote disk system 
(se col. 9, lines 29-35 and col. 10, lines 21-27 of Ohran); 

o Determining whether the data is to be stored in an encrypted form (see 
col. 1 1 , lines 40-43 of Ohran suggests that some of the data can be 
encrypted, but does not necessarily mean the same data has to be 
decrypted); and 

o If the data is to be stored in a decrypted form, decrypting and writing the 
data in the remote disk system (see col. 1 1 , lines 47-49 of Ohran); and 

o If the data is to be stored in an encrypted form, writing the data in the 
remote disk system without decrypting the data (see col. 1 1 , lines 40-43 of 
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Ohran, the word may suggests that the data does not have to be 
decrypted), 

o notifying the local disk system that the step of writing the data is complete 
(see col. 6, lines 41-46 of Yanai et al.), 

• Wherein the local disk system is coupled to the first host computer via a second 
communication link to allow the first host computer to access data stored in the 
local disk system, the first and second communication links being different (see 
fig. 1, ref. num 40 and 18 of Yanai et al.), 

• Wherein the data transfer between the local disk system and the remote disk 
system occurring via a communication link that couples the local disk system to 
the remote disk system, so that the local disk system may send the data to the 
remote disk system without direct involvement from the host computer (see fig. 1 , 
ref. num 16 of Ohran, col. 5, lines 53-63 of Yanai et al., and col. 6, lines 16-37 of 
Yanai et al.), 

• Wherein the list of encryption keys includes first and second keys, the first key 
being assigned to a first set of volumes in the local disk system, and the second 
key being assigned to a second set of volumes in the local disk system, each of 
the first and second set of volumes including one or more volumes (see col. 1 1 , 
lines 53-55 of Ohran), 

• Wherein the remote disk system is coupled to a second host computer (see fig. 
1 , ref. num 52 and 54 of Yanai et al.). 
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However, the combination of Ohran as modified by Yanai et al. does not teach 
further comprising a step of maintaining an encryption control table on the local disk 
system, the encryption control table including a list of encryption keys for selected 
volumes of the local and the remote disk system, wherein the retrieving step includes 
accessing the encryption control table to obtain an appropriate encryption key, where 
the data are encrypted using the first key if the data to be transferred to the remote disk 
system are associated with the first set of volumes and encrypted using the second key 
if the data to be transferred to the remote disk system are associated with the second 
set of volumes. 

Jacobson teaches further comprising a step of maintaining an encryption control 
table on the local disk system (fig. 2, ref. num 232), the encryption control table 
including a list of encryption keys for selected volumes of the local and the remote disk 
system (fig. 10), wherein the retrieving step includes accessing the encryption control 
table to obtain an appropriate encryption key, where the data are encrypted using the 
first key if the data to be transferred to the remote disk system are associated with the 
first set of volumes and encrypted using the second key if the data to be transferred to 
the remote disk system are associated with the second set of volumes (fig. 10, separate 
keys for separate areas of encryption). 

It would have been obvious to one of ordinary skill in the art, at the time the 
invention was made, to combine maintaining an encryption control table on the local 
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disk system wherein the table includes a list of encryption keys for selected volumes of 
the local and remote disk system, as taught by Jacobson , to the system of Ohran as 
modified by Yanai et al. It would have been obvious for such modifications because the 
table provides a list of keys to use for encryption and decryption for the local remote 
system. This new system uses a table of keys to determine how and when to encrypt 
and decrypt the data in the local and remote system. 

Regarding claims 3 and 19 , the combination of Ohran and Yanai et al. as 
modified by Jacobson teaches wherein the list of encryption keys further includes 
information relating to the use and non-use of encryption on the local disk system (see 
col. 1 1 , lines 40-43 of Ohran suggests that encryption/decryption can occur, but does 
not have to occur). 

Regarding claims 4 and 20 , the combination of Ohran and Yanai et al. as 
modified by Jacobson teaches wherein the list of encryption keys further includes 
information relating to the use and non-use of encryption on the remote disk system 
(see col. 1 1 , lines 40-43 of Ohran). 

Regarding claims 5 and 21 , the combination of Ohran and Yanai et al. as 
modified by Jacobson teaches wherein the encryption key is applicable to less than all 
of the storage on the local disk system (see col. 1 1 , lines 40-43 of Ohran shows that 
some, less than all, of the data is encrypted). 
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Regarding claims 6 and 22 . the combination of Ohran and Yanai et al. as 
modified by Jacobson teaches wherein the encryption key is applicable to less than all 
of the storage on the remote disk system (see col. 1 1 , lines 43 of Ohran shows that 
some, less than all, of the data is decrypted). 

Regarding claim 7 , the combination of Ohran and Yanai et al. as modified by 
Jacobson teaches wherein the encryption key is applicable to at least one disk on the 
local disk system (see col. 1 1 , lines 40-43 of Ohran and fig. 1 , ref num 20 of Yanai et 
al. shows that the different volumes would not have to be encrypted, such as the local 
volume, because transmission does not occur from the local volume). 

Regarding claim 8 , the combination of Ohran and Yanai et al. as modified by 
Jacobson teaches wherein the encryption key is applicable to at least one disk on the 
remote disk system (see col. 1 1 , lines 40-43 of Ohran and fig. 1 , ref. num 48 of Yanai et 
al. shows that the different volumes would not have to be decrypted, such as the local 
volume, because transmission does not occur to the local volume). 

Conclusion 

4. For all of the above rejections, figure 1 , reference numbers 22a, 22b, 50a, and 
50b of Yanai et al. were cited for teaching first and second volumes in the local disk 
system and third and fourth volumes in the remote disk system. Column 7, lines 54-65 
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of Yanai et al., shows that data from the primary storage volume of the local disk gets 
copied to the primary storage volume of the remote disk. Similarly, data from the 
secondary storage volume of the local disk gets copied to the secondary storage 
volume of the remote disk. Ohran discloses encrypting the data using a key in figure 6. 
The combination of Ohran's encryption with Yanai et al.'s primary and secondary 
volumes, would produce a system that has at least two volumes on the local disk and 
the remote disk that uses encryption to encrypt the data. The only limitation that is 
lacking is that a first key is used on the first volume and a second key is used on the 
second volume. It would have been obvious to use two separate keys for the two 
separate volumes because if one volume were to be compromised (say a volume 
containing information for Bank A), then the second volume would remain secure (Bank 
B's data). If only one key were used, both Bank A and Bank B would be at risk. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Brandon S. Hoffman whose telephone number is 571- 
272-3863. The examiner can normally be reached on M-F 8:30 - 5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R. Sheikh can be reached on 571-272-3795. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
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Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
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